Missing User Warnings
Medium
- Confidence
- 87% confidence
- Finding
- The skill explicitly instructs the agent to read, write, and delete `{baseDir}/.credentials` containing access tokens, but it does not require any user-facing notice about local token persistence, sensitivity of the file, or logout effects. This creates a real privacy and credential-handling risk because bearer tokens grant authenticated access to profile, notes, activity, and other account functions if the local environment is shared or compromised.
